2020-03-13 16:56:12
mitre
PUBLISHED
GitLab 8.3 through 12.8.1 allows Information Disclosure. It was possible for certain non-members to access the Contribution Analytics page of a private group.